Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft
File: IbgvyO2I-ZyrV9doAxdusnqfC_o.mft (raw, json)
Hash identifier: UzKTayWHOcl8YA+Neje/D/HBxQyBJytUwY76BIBpz3o=
Subject key identifier: 4A:F0:0E:B9:C9:72:D4:7D:71:6E:87:34:6D:A5:9E:82:65:60:B1:1A
Authority key identifier: 21:B8:2F:C8:ED:88:F9:9C:AB:57:D7:68:03:17:6E:B2:7A:9F:0B:FA
Certificate issuer: /CN=21b82fc8ed88f99cab57d76803176eb27a9f0bfa
Certificate serial: 019938DF46792E09DCD12E8D45E03D5338C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbgvyO2I-ZyrV9doAxdusnqfC_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft
Manifest number: 0E09
Signing time: Thu 11 Sep 2025 13:03:00 +0000
Manifest this update: Thu 11 Sep 2025 13:03:00 +0000
Manifest next update: Fri 12 Sep 2025 13:03:00 +0000
Files and hashes: 1: IbgvyO2I-ZyrV9doAxdusnqfC_o.crl (hash: fS5a7cj45oOWG5LnHWTW8npo+iWy2PoKr2ec1Qexmek=)
2: ItUhScrgPwKkKUyhqEMMP6UQG5o.roa (hash: gmpeHaOEVGgSYmwc/n6Xey1Y6I6lJR2qqLtWqmrTzmc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft
rsync://rpki.ripe.net/repository/DEFAULT/IbgvyO2I-ZyrV9doAxdusnqfC_o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Sep 2025 13:03:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:38:df:46:79:2e:09:dc:d1:2e:8d:45:e0:3d:53:38:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21b82fc8ed88f99cab57d76803176eb27a9f0bfa
Validity
Not Before: Sep 11 13:03:00 2025 GMT
Not After : Sep 12 13:03:00 2025 GMT
Subject: CN=4af00eb9c972d47d716e87346da59e826560b11a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:30:5d:ed:a2:77:27:ed:27:d6:81:c7:c1:ee:
a5:09:0a:cc:6a:fe:ca:a3:f1:14:56:e6:ca:79:14:
a6:63:f8:f6:fd:e1:72:57:40:6a:f4:94:01:e6:89:
69:09:e8:5e:f4:41:c8:ea:cc:87:df:92:8a:fe:22:
51:30:bb:56:82:f6:2f:0d:fc:67:76:74:35:49:0a:
50:21:0d:5e:45:ce:04:c1:3f:d8:9d:c0:fa:29:19:
57:63:44:fd:df:0f:d3:c5:85:c1:09:bc:67:d9:d9:
64:62:39:4f:9f:7c:3a:30:cb:c0:61:3f:5f:6b:b1:
a1:ff:0c:d8:d5:99:60:93:65:9f:82:2f:46:4e:3a:
38:6f:71:af:9f:23:52:dd:aa:67:7a:6e:76:b4:51:
e1:c0:87:be:29:c0:e4:f3:66:a7:d0:8f:af:74:c1:
1c:5c:00:51:fa:1f:51:41:8b:bf:1a:28:c5:b6:e0:
42:d9:e5:4a:0e:2b:e4:5f:56:ec:b9:ed:ef:f8:11:
20:61:5e:ed:51:fe:59:1e:42:b8:5c:5e:5c:a8:a6:
9e:19:f5:d8:85:fc:dc:62:3d:ec:cf:c9:14:d9:05:
c6:51:d2:da:db:50:8f:69:cc:e3:ca:3e:60:2d:f7:
de:6d:f6:06:cb:0c:47:cf:54:f2:6d:88:86:62:d8:
74:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:F0:0E:B9:C9:72:D4:7D:71:6E:87:34:6D:A5:9E:82:65:60:B1:1A
X509v3 Authority Key Identifier:
keyid:21:B8:2F:C8:ED:88:F9:9C:AB:57:D7:68:03:17:6E:B2:7A:9F:0B:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbgvyO2I-ZyrV9doAxdusnqfC_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:4c:33:b8:1b:9a:37:48:94:08:93:22:d2:37:78:53:ab:9f:
a6:38:16:ab:4f:25:9c:08:9c:72:a8:ee:4b:a5:0a:70:bc:50:
4f:11:6b:50:9f:26:d3:67:26:6f:fa:59:94:e1:08:dc:90:be:
6d:f7:90:04:6c:5a:2d:f3:e5:23:e3:6a:94:cb:85:5b:1e:21:
d1:71:9e:9b:14:cb:41:9a:2d:ee:a6:9f:c7:68:54:38:31:e6:
21:f6:a7:32:35:65:76:39:55:aa:d1:f8:1f:29:4a:cf:48:64:
8b:33:d7:5b:99:f3:8b:61:e0:a3:3a:ae:18:b1:e3:59:bd:c0:
8d:38:a1:a5:d4:dd:7f:6e:68:34:8e:be:f9:9f:60:6d:1b:4c:
d5:cc:5e:ea:36:9d:f8:78:0c:e1:8e:27:95:e6:c8:cb:3f:d9:
c0:4c:13:58:84:2f:b6:dc:8a:5a:df:9d:62:c0:37:c6:ed:ae:
5e:4a:96:18:40:14:e3:45:69:88:47:c5:e1:8a:32:65:f5:58:
c7:03:78:29:d0:d0:9d:85:e3:a0:0b:0e:34:5f:65:a5:a6:e1:
a4:f1:dd:bf:b3:ae:fa:44:64:7d:40:4a:fe:2b:45:42:09:54:
b3:b5:95:b2:4d:94:15:c4:37:e7:83:17:a5:5a:35:fb:8e:12:
cd:1a:31:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 16:39:16 2025 by rpki-client